Web Vault & Desktop App (Legacy, Abridged)
End-user guide for the Keeper Web Vault and cross-platform, Keeper Desktop Application.
Last updated
End-user guide for the Keeper Web Vault and cross-platform, Keeper Desktop Application.
Last updated
With Keeper, your passwords, logins and other personal information are saved in a private and secure digital vault. It is here where you can view and edit all of your website login credentials and details, as well as store important files and photos.
If you are a new user, click Create Account
at the login page and enter your email address. You will then be asked to create and confirm a Master Password. This will be the only password you have to remember -- don't forget your Master Password! Lastly, you will be asked to enter the verification code that was sent to your email.
Once your Keeper vault is created, you will be guided through a "Quick Start" walkthrough, that will help you either import passwords from your browser or other password manager or manually create new records.
Enterprise (SSO) users, please refer to our supplemental "Enterprise End-User (SSO)" guide located in the sub-section of this guide for details on account creation, login flows and device approvals.
Your passwords, logins, credit card numbers, bank accounts and other personal information are saved in your private digital Vault (as "Records") and are encrypted on your device using 256-bit AES. To begin, simply click + Create New > Record
.
Name Your Record
Enter Your Email or Username
Enter Your Password or Tap the Dice to Generate One (more on that here)
Enter the Website Address
Enter Additional Notes, Custom Fields, and Securely Add Files & Photos
Click Save
to Finish
Keeper can also import logins and passwords directly from your web browser, another password manager or a text file (.csv).
Click Next
to install the Keeper import tool and begin the import process.
After installing the import tool, you'll be asked to copy-paste a code or "token" from the vault into the import tool.
Keeper will report websites and their associated logins and passwords directly from your web browser. You can then scroll though the report and uncheck those you do not wish to import. Once you have finished reviewing the report, click Add to Keeper
to import the selected password.
If you are using an existing password manager or if your passwords are stored in a text file (.csv), you can import those passwords by first selecting your import source from the list and then clicking View Import Instructions
to follow the provided instructions.
Enterprise Users, importing Passwords may not be available as determined by your Keeper Administrator.
Download Keeper to access your Keeper Vault from any platform and be able to use it for native applications across all of your devices.
Visit: https://keepersecurity.com/download to download the Keeper App for all of your desktop and mobile devices.
Note: Keeper Browser Extension v15 and newer is required for SSO Cloud users.
Keeper allows you to organize your records by folders and subfolders. To create a folder, click on + Create New > Folder
.
To create a subfolder, right-click on the existing/parent folder and click New Folder
.
Drag-and-drop the record(s) you would like to store in a folder or subfolder and click Move
or Create shortcut
. To move multiple records, hold "shift" and click the items to drag-and-drop.
Shortcuts like alias files, can exist in two or more places and when edited, change together.
Moving and shortcuts can also be performed by right-clicking on a record or folder to generate a contextual options menu.
By right-clicking on a record you can create a record "Favorite", which is used to easily locate your most frequently visited sites.
Securely create, share and manage records and folders with existing Keeper users such as family, friends and colleagues.
While viewing a record click Options > Sharing
.
Enter the email(s) of the Keeper users then choose their permission type from the dropdown menu.
Permission Type | Permission Level |
Can Edit | Users in folder can edit this record |
Can Share | Users in folder can share this record |
Can Edit & Share | Users in folder can edit and share this record |
Read Only | Users can only view the record |
Transfer Ownership | User will own the record and control the sharing permissions |
Click Create New > Shared Folder
.
Click the dropdown to select where you would like to nest the shared folder. Click Edit
to add record(s), user(s), set permission types and the default folder settings.
Permission Type | Permission Level |
Can Manage Users | Can add or remove users |
Can Manage Records | Can add or remove records |
Can Manage Users & Records | Can add or remove users and records |
No User Permission | Can view only |
Once the default configuration is set, it will only affect users and records added after the change was made. To change users or records added prior to the default configuration, those items will need to be changed either individually or through a bulk change.
Identity & Payments is the place for you to store your personal contact/address information and credit card numbers safely.
From the left navigation menu, click Identity & Payments
, enter a username and click + Phone Number
and + Address
to enter your corresponding information.
Long, random passwords that are created for each login help protect your information and reduce your exposure to data breaches. Keeper generates and securely stores strong, random passwords for all of your sites and apps with the click of the dice.
This will NOT automatically change the website's existing login password. You must still visit the corresponding website's "Change Password" form to update the old password to match the new, stronger password.
Custom Fields allow you to store additional important data, like the answer to a site's security question or your passport number. Custom fields are created in pairs: "Custom Field Name" and "Custom Field Value".
Please note, "masked" custom field values are only available for Keeper Enterprise customers.
Auto-launch allows you securely and quickly navigate to your favorite websites. Simply click a record's Website URL to launch and login with Keeper in a new window.
Security Audit gives your passwords an overall security score and lets you clearly see what passwords are weak from a password strength visual indicator (red being the weakest, green being the strongest).
You can edit a record's password by clicking on the record from the provided list (you will still need to update the password at the record's website to match the new, corresponding password in your vault).
(1) At your target website, visit the two-factor authentication screen which is usually located within security settings. It is sometimes referred to as "login verification" or "two-step verification". Screengrab the QR pattern or copy the secret code to clipboard.
(2) Within a Keeper record, select Edit > Add Two-Factor Code
(3) Upload the screengrab of the Two-Factor QR pattern (with security key) associated with the site or application. If there isn't a QR pattern, use the manual entry method. Enter the code given under “Secret Key”, often a 32-digit code and fill out the rest of the fields.
(4) After adding the security key to the vault record a Two-Factor Code will be generated inside the Keeper record.
(5) The two-factor code will be regenerated frequently and can then be copied and filled into the site or app when prompted after logging in with a username and password.
With the KeeperFill browser extension, you can autofill your passwords and save new login credentials to your vault. KeeperFill is available for every web browser (Chrome, Firefox, Safari, IE, Edge and Opera).
Download KeeperFill for your browser by visiting our Downloads Page.
Once downloaded, the KeeperFill browser extension will appear in the upper-right corner of your browser window (for Safari, it will appear left of center).
You will be automatically logged into the KeeperFill Browser Extension upon signing into the Keeper Web Vault. Alternatively, you can log in by clicking the Keeper icon located in your browser toolbar and entering your email address and Master Password.
If this is your first time logging into a site while logged into KeeperFill, you will be asked if you would like to auto-fill your login, to do so, click Yes
Alternatively, clicking on the Keeper lock in a login field allows you to view and edit the record match (or create a new one). Click the fill button to fill your login credentials or click Show More
to view/fill individual fields.
KeeperFill's easily accessible search bar, allows you to search within your vault to quickly locate and fill the desired login credentials, payment cards and personal info such as addresses.
Keeper recognizes when you are at a site's login form and will prompt you to create a record if one has not yet been created.
Click + Create New Record
Review and edit the details of the Keeper generated record and click the check mark to fill and save the record to your Keeper vault.
KeeperFill makes it easy to change your passwords. When visiting a site's "Change Password" form, you will receive a prompt from Keeper asking if you would like help changing your password. By clicking Yes
Keeper will walk you through a few quick steps to change your password and simultaneously update the record in your vault. These steps will include a series of prompts detailing the following actions:
Autofill your old/current password
Automatically generate and autofill a new secure password
Confirm the changes and save them to your vault
KeeperFill's Prompt to Change a Password
Keeper offers Secure File Storage to protect your confidential files, photos and videos. Securely upload and store files such as passport photos, medical cards, drivers licenses, tax and loan documents, videos and any other private file to your Keeper vault.
Files can either be added to an existing record or you can create a standalone record to store the file independently of other login information.
Click + Files or Photos
to upload a file or simply drag-and-drop the file directly into your vault.
BreachWatch is a powerful secure add-on feature that monitors the internet and dark web for breached accounts, matching records stored within your Keeper vault. BreachWatch alerts you so that you can take immediate action to protect yourself against hackers. Once activated, BreachWatch continuously monitors for compromised credentials and notifies you if any of your records are at risk.
To start your BreachWatch scan, from the left navigation menu, click BreachWatch > Let's Begin
.
BreachWatch will then scan your records and report any risks associated with them. Clicking each record listed will allow you view the steps needed to resolve each risk.
Resolving the risk requires you to change the password at the affected website. Once you have done that, be sure to update the corresponding record in your Keeper Vault with the same password.
If you click Ignore
, then that record will be skipped on future scans until the password is reset. You may also do nothing (deferring a response) and leave the risky password unchanged and thus still at risk.
Two-Factor Authentication (2FA) provides an extra layer of security when logging into your Keeper Vault or another site or application by requiring a secondary passcode upon logging in.
Enabling Two-Factor Authentication is advised for highly valuable or sensitive accounts (e.g. banking, medical and social media accounts).
To enable 2FA for your Keeper vault, from the Account Dropdown Menu, click Settings > Security
, toggle "Two-Factor Authentication" on and select your 2FA method.
(1) The Text Message toggle is on by default. Select a Region from the dropdown (US+1 by default), enter your 10 digit phone number including your area code and click Next
(2) To verify that you trust this number and device, enter the Keeper Web code that was sent to the phone number you provided. Select your 2FA code duration from the dropdown menu and click Next
You will be prompted for 2FA every time you login to your Vault unless you select an alternative code duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.
Codes will only last for a minute; if you need another code sent, click Send a new code
(3) Backup codes will be shown next. If you are unable to receive Two-Factor codes via the phone number you entered, you can enter one of the codes listed instead. Click I have written these codes down
to finish.
(1) Toggle "Google and Microsoft Authenticator (TOTP)" on and click Next
(2) Using the device that runs the Google or Microsoft Authenticator App, scan the QR code provided. The app will then acknowledge the QR code and produce a verification code.
(3) Enter that verification code and click Next
You will be prompted for 2FA every time you login to your Vault unless you select an alternative code duration. Business customers may be required to enter the code every login as determined by their Keeper Administrator.
(4) Backup codes will be shown next. If you are unable to receive Two-Factor codes via the phone number you entered, you can enter one of the codes listed instead. Click I have written these codes down
to finish.
In order for Azure MFA (using the Microsoft Authenticator app.) to be utilized as a TOTP, the Azure administrator needs to allow the verification method "Verification code from mobile app or hardware token" when setting up MFA in Azure.
Keeper DNA is a Two-Factor Authentication method that uses your smart watch as your second factor.
To use this feature, toggle the switch next to Keeper DNA, then follow these links to set up KeeperDNA on your preferred platform:
Keeper DNA on Android devices is undergoing a revision and planned for a future release. Legacy versions will function as expected.
Users can change specific features like language, theme and Two-Factor Authentication in the Settings menu. You can access the Settings menu from the Account Dropdown Menu.
Choose a New Color Theme
Set Clipboard Expiration
Choose another language: English US & UK, Spanish, Japanese, Romanian, Chinese Simplified & Traditional, French, Korean, Russian, Arabic, Greek, Dutch, Slovak, Brazilian Portuguese, Hebrew, Polish, German, Italian, and Portuguese
Reset Master Password
Reset Security Question
Change Email Address
Locate and Delete Duplicate Records
Delete All Owned Records
Enable Auto-Logout
Enable Stay Logged In (Desktop App)
Enable Self-Destruct
Setup Security Keys
Adjust PBKDF2 Iterations
The instructions below are for uninstalling Keeper Desktop App (Keeper Password Manager) for Mac and Windows OS.
Uninstalling the Keeper Password Manager will delete the data from Keeper on the local device. Data stored in Keeper's Cloud Security Vault is NOT erased.
Drag the Keeper Password Manager app to the Trash.
Empty the Trash.
Uninstalling Keeper Password Manager will also remove KeeperFill Browser Extension from Safari. Data stored in Keeper's Cloud Security Vault will NOT be erased.
Navigate to the Windows Start Menu > Settings > Apps & Features.
Within Apps & features, click the Keeper Password Manager application.
Click Uninstall.
You will be warned that the app and its related info will be uninstalled, click Uninstall to confirm.
User Account Control will ask you to confirm making changes to your device, confirm the changes by clicking Yes.
Additional user tutorial videos are available at: https://keepersecurity.com/support